Skip to content

Commit 596ba0c

Browse files
nilo19nilo19
authored
fix: fix cves for release-1.33 (#9682)
1 parent d87e724 commit 596ba0c

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

51 files changed

+2003
-1033
lines changed

cloud-node-manager.Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@ RUN make bin/azure-cloud-node-manager ENABLE_GIT_COMMAND=${ENABLE_GIT_COMMAND} A
3333

3434
# Use distroless base image for a lean production container.
3535
# Start a new build stage.
36-
FROM gcr.io/distroless/base:latest@sha256:d605e138bb398428779e5ab490a6bbeeabfd2551bd919578b1044718e5c30798
36+
FROM gcr.io/distroless/base:latest@sha256:9e9b50d2048db3741f86a48d939b4e4cc775f5889b3496439343301ff54cdba8
3737

3838
# Create a group and user
3939
USER 65532:65532

go.mod

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -27,9 +27,9 @@ require (
2727
go.opentelemetry.io/otel/sdk/metric v1.37.0
2828
go.opentelemetry.io/otel/trace v1.37.0
2929
go.uber.org/mock v0.6.0
30-
golang.org/x/sync v0.16.0
31-
golang.org/x/sys v0.35.0
32-
golang.org/x/text v0.28.0
30+
golang.org/x/sync v0.18.0
31+
golang.org/x/sys v0.38.0
32+
golang.org/x/text v0.31.0
3333
k8s.io/api v0.33.4
3434
k8s.io/apimachinery v0.33.4
3535
k8s.io/apiserver v0.33.4
@@ -117,11 +117,11 @@ require (
117117
go.uber.org/multierr v1.11.0 // indirect
118118
go.uber.org/zap v1.27.0 // indirect
119119
go.yaml.in/yaml/v2 v2.4.2 // indirect
120-
golang.org/x/crypto v0.41.0 // indirect
120+
golang.org/x/crypto v0.45.0 // indirect
121121
golang.org/x/exp v0.0.0-20250305212735-054e65f0b394 // indirect
122-
golang.org/x/net v0.43.0 // indirect
122+
golang.org/x/net v0.47.0 // indirect
123123
golang.org/x/oauth2 v0.30.0 // indirect
124-
golang.org/x/term v0.34.0 // indirect
124+
golang.org/x/term v0.37.0 // indirect
125125
golang.org/x/time v0.12.0 // indirect
126126
google.golang.org/genproto/googleapis/api v0.0.0-20241209162323-e6fa225c2576 // indirect
127127
google.golang.org/genproto/googleapis/rpc v0.0.0-20241209162323-e6fa225c2576 // indirect

go.sum

Lines changed: 85 additions & 0 deletions
Large diffs are not rendered by default.

vendor/golang.org/x/crypto/pkcs12/pkcs12.go

Lines changed: 9 additions & 5 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/golang.org/x/crypto/salsa20/salsa/hsalsa20.go

Lines changed: 4 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/golang.org/x/net/context/context.go

Lines changed: 22 additions & 48 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/golang.org/x/net/http2/config.go

Lines changed: 55 additions & 8 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/golang.org/x/net/http2/config_go124.go

Lines changed: 0 additions & 61 deletions
This file was deleted.

vendor/golang.org/x/net/http2/config_go125.go

Lines changed: 15 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/golang.org/x/net/http2/config_go126.go

Lines changed: 15 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)